Extended Key Usages
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
2025-07-02_e66bff7972b05971a628d64863f10bb8_amadey_elex_floxif_rhadamanthys_smoke-loader.exe
Resource
win10v2004-20250610-en
Target
2025-07-02_e66bff7972b05971a628d64863f10bb8_amadey_elex_floxif_rhadamanthys_smoke-loader
Size
179KB
MD5
e66bff7972b05971a628d64863f10bb8
SHA1
c944799ef733190e72593d0d8fb7d7fb8ee3f91c
SHA256
8f992183bb88de0633d9c7cda57336fd0a87d6abd55263e4b51fcee63ca70935
SHA512
baebc54e9bcfdb7e8c2b1a191d226ac18fe48243ad58cf757341c8c5f18f7f1597bf974a0a1ad08c36ac2ea72a7f9c2d5bf3394185f301519cacd24baf13b5a8
SSDEEP
3072:odOLOMLt/BSQ3fU98kvVnTCF2lQBV+UdE+rECWp7hKMLX:odOP5BJPU2kvVnGJBV+UdvrEFp7hKa
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
VCCDInit
CloseVCCD
VCCDRestoreDrives
VCCDGetDrives
VCCDGetStatus
VCCDCloseDevice
VCCDOpenDeviceW
OpenVCCDLetter
VCCDOpenDevice
VCCDOpenLastMountedFile
ElbyCDIO_InitScsi
ElbyCDIO_GetOSVersion
CloseHandle
CreateProcessW
CreateProcessA
MultiByteToWideChar
lstrlenW
GetDriveTypeA
GetLastError
CreateEventA
GetModuleFileNameW
GetModuleFileNameA
GetProcessHeap
SetEndOfFile
WriteConsoleW
HeapReAlloc
CreateFileA
SetFilePointer
LoadLibraryW
WaitForSingleObject
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
HeapSize
Sleep
GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
SetHandleCount
GetExitCodeProcess
lstrcpyA
lstrcatA
LoadLibraryA
FreeLibrary
GetModuleHandleA
GetProcAddress
GetCurrentProcess
lstrcmpA
lstrlenA
lstrcmpiA
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsProcessorFeaturePresent
RtlUnwind
InitializeCriticalSectionAndSpinCount
ReadFile
GetStdHandle
WriteFile
HeapFree
HeapAlloc
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
DecodePointer
TlsFree
GetModuleHandleW
SetLastError
GetCurrentThreadId
LCMapStringW
RaiseException
HeapCreate
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
EnterCriticalSection
LeaveCriticalSection
ExitProcess
CreateFileW
TrackPopupMenu
PostMessageA
LoadImageA
wsprintfA
GetMessageA
TranslateMessage
DispatchMessageA
LoadCursorA
RegisterWindowMessageA
RegisterClassExA
DestroyWindow
PostQuitMessage
GetMenu
GetSubMenu
DefWindowProcA
GetCursorPos
DestroyMenu
SetTimer
KillTimer
CreateWindowExA
SetMenuDefaultItem
CreatePopupMenu
AppendMenuW
AppendMenuA
MessageBoxW
MessageBoxA
wsprintfW
SetForegroundWindow
GetStockObject
GetOpenFileNameW
GetOpenFileNameA
RegCreateKeyExA
RegDeleteValueA
RegQueryValueExW
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegEnumKeyA
RegDeleteKeyA
ShellExecuteA
Shell_NotifyIconA
CreateClassMoniker
CoUninitialize
CoInitialize
GetRunningObjectTable
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ